REMARKS 

After entry of this amendment, claims 1-2, 5-17, and 33-49 remain pending. In 
the present Office Action, claims 1-32 were rejected under 35 U.S.C. § 102(e) as being 
anticipated by Coile et al., U.S. Patent No. 6,061,349 ("Coile"). Applicant respectfully 
traverses this rejection and requests reconsideration. 

Claims 1-2 and 5-17 

Applicant respectfully submits that each of claims 1-2 and 5-17 recites a 
combination of features not taught or suggested in the cited art. For example, claim 1 
recites a combination of features including: " the second application sending the 
communication to the first port ; a first application requesting the communication from the 
first port ; translating the first port in the request for the communication from the first 
application to the second port ; and delivering the communication to the first application 
from the second port ". 

Coile teaches a "Local Director 200 contains a packet interceptor 204 which 
intercepts packets containing certain destination IP addresses and port numbers. An 
address and port number translator 206 replaces the destination IP address and destination 
port number in the packets with the address and port number of a physical machine 210 
which implements the virtual machine that corresponds to the destination IP addresses 
specified by the client on network communication line 202." (Coile col. 5, lines 28-35). 
Coile further teaches "Outbound packets from physical machine 210 are intercepted by a 
packet interceptor 218 and the source IP address and port number of those packets is 
translated by an address and port number translator 220. Packet interceptor 218 and port 
number translator 220 use connection database 212 to find correct virtual IP address and 
port number to replace the IP address and port number of physical machine 210 as the 
source IP address and port number of the packet. Thus, not only is the connection 
requested by a client to a virtual machine redirected without the client's knowledge to 
physical machine 210, but the returned packets from physical machine 210 are altered so 
that it also appears to the client that the return packets are sent from the virtual machine 
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which the client attempted to access." (Coile, col. 6, lines 28-42). Thus, Coile teaches a 
local director 200 that translates a virtual IP address and virtual port number from a client 
packet to the server's IP address and port number. Server packets include the server IP 
address and port number, which the local director 200 maps to the virtual IP address and 
virtual port number for packets sent to the client. The server uses its own IP address and 
port number, presumably unaware of the virtual IP address and virtual port number. The 
clients use the virtual IP address and virtual port number, unaware of the server's IP 
address and port number. 

These teachings do not teach or suggest " the second application sending the 
communication to the first port ; a first application requesting the communication from the 
first port ; translating the first port in the request for the communication from the first 
application to the second port ; and delivering the communication to the first application 
from the second port ". For at least the above stated reasons, Applicant submits that claim 
1 is patentable over the cited art. Claims 2 and 5-17, being dependent from claim 1, are 
similarly patentable over the cited art for at least the above stated reasons. Each of 
claims 2 and 5-17 recite additional combinations of features not taught or suggested in 
the cited art. 

New Claims 33-49 

Applicant respectfully submits that each of new claims 33-49 recites a 
combination of features not taught or suggested in the cited art. For example, claim 33 
recites a combination of features including: "receiving the communication on the first 
port from the second application; receiving a request for the communication from a first 
application, the request including an indication of the first port; translating the first port 
in the request for the communication from the first application to the second port; and 
delivering the communication to the first application from the second port". Claims 34- 
44 depend from claim 33 and recite additional combinations of features not taught or 
suggested in the cited art. 
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As another example, claim 45 recites a combination of features including: "the 
second application is configured to send the communication to the first port; the first 
application is configured to request the communication from the first port; the first 
computer is configured to translate the first port in the request for the communication 
from the first application to the second port; and the first computer is configured to 
deliver the communication to the first application from the second port". Claims 46-49 
depend from claim 45 and recite additional combinations of features not taught or 
suggested in the cited art. 

Specification Objection 

The specification was objected to for not including enough spacing between the 
lines. A substitute specification is included herewith that includes additional spacing. 
Furthermore, the substitute specification has been amended to correct a serial number in 
the priority claim and to correct minor typographical/grammatical errors, as shown in the 
marked-up copy of the substitute specification. Applicant believes that no new matter 
has been entered. 
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CONCLUSION 

Applicant submits that the application is in condition for allowance, and an early 
notice to that effect is requested. 



If any extensions of time (under 37 C.F.R. § 1.136) are necessary to prevent the 
above referenced application(s) from becoming abandoned, Applicant(s) hereby petition 
for such extensions. If any fees are due, the Commissioner is authorized to charge said 
fees to Meyertons, Hood, Kivlin, Kowert, & Goetzel, P.C. Deposit Account No. 
501505/5760-22600/LJM. 

Also enclosed herewith are the following items: 
1^1 Return Receipt Postcard 
["I Petition for Extension of Time 
f"1 Request for Approval of Drawing Changes 
1^1 Notice of Change of Address 

I | Fee Authorization Form authorizing a deposit account debit in the amount of $ 
for fees ( ). 

1X1 Other: IDS and cited reference, substitute specification (marked up and clean copies). 



Respectfully submitted, 




Meyertons, Hood, Kivlin, Kowert, & Goetzel, P.C. 

P.O. Box 398 

Austin, TX 78767-0398 

Phone: (512) 853-8800 



Date: /l* (tf 
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Marked-up copy of substitute specification for U.S. 
Serial No. 09/684,457, filed October 5, 2000 

VIRTUAL PORT MULTIPLEXING 

REFERENCE TO RELATED APPLICATIONS 
The present application claims priority to and incorporates the following applications 
by reference: DYNAMIC SYMBOLIC LINK RESOLUTION, Prov. No. 60/157,728, filed 
on October 5, 1999; SNAPSHOT VIRTUAL TEMPLATING, Prov. No. 60/157,728, 
60/157.729. filed on October 5, 1999; SNAPSHOT RESTORE OF APPLICATION CHAINS 
AND APPLICATIONS, Prov. No. 60/157,833, filed on October 5, 1999; VIRTUAL 
RESOURCE-ID MAPPING, Prov. No. 60/157,727, filed on October 5, 1999; and VIRTUAL 
PORT MULTIPLEXING, Prov. No. 60/157,834, filed on October 5, 1999. 

FIELD 

The present invention relates generally to the multiplexing of ports. More 
specifically, the present invention relates to the rerouting of communication to alternative 
ports allowing a plurality of computers and/or applications to send and receive data directed 
at the same port number. 

BACKGROUND 

Prior art computers communicate or transmit data through communication channels 
accessed through ports. A port is an endpoint to a logical connection. Communication 
between computers is achieved by forwarding data to a particular address, such as an IP 
address, on a predefined port number. Each port has a port number and the port number 
identifies what type of port each port is. For example, port 80 is used for HTTP traffic. Ports 
are utilized in several different protocol networks including TCP/IP and UDP networks. 
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When a first application running on a first computer transmits data directed to a 
second application on a second computer, the first application will transmit the data directed 
at a predefined port to be received by the second computer and application. If the port is 
unknown, the data cannot be forwarded. Further, if a first application is currently listening on 
5 a given port, a second application that listens on the same port will fail because the port is 
already in use. The port cannot be initialized for listening by the second application if the 
port is already in use by the first application. 

SUMMARY 

10 To achieve the foregoing, and in accordance with the purpose of the present 

invention, a method and apparatus is disclosed which provides communication between at 
least two applications. The communication is achieved by accepting a connection from a 
second application on a first port and allocating a second port to receive the communication 
from the second application. Once the second port has been allocated the second port 

1 5 translation is recorded. The communication is sent to the first port from the second 

application and received on the second port. The communication is then delivered to a first 
application from the second port. In one embodiment the first application requests the 
communication from the first port and the first port is translated to determine the second port 
such that the communication is delivered to the first application in the step of delivering the 

20 communication to the first application. 

In one embodiment, the communication is received on the first port following the step 
of sending the data to the first port, the first port is translated to determine the second port 
prior to the step of receiving the communication on the second port, and the step of receiving 
the communication on the second port includes queuing the communication on the second 

25 port from the first port. 
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In one embodiment, the second application requests to connect with the first port prior 
to the step of accepting the connection. Once the second port is allocated, the second port is 
negotiated including negotiating the second port between a first and second virtual port 
multiplexer. Further, the second application is connected with the second port following the 
5 step of allocating the second port. The step of recording the translation including, first, 
recording the translation of the second port in association with the first application, and 
second, recording the translation of the second port in association with the second 
application. 

1 0 BRIEF DESCRIPTION OF THE DRAWINGS 

The invention, together with further advantages thereof, may best be understood by 
reference to the following description taken in conjunction with the accompanying drawings 
in which: 

FIG. 1 A is a high level block diagram illustrating the various components of a 
1 5 computer network used in connection with the present invention; 

FIG. IB is a high level block diagram a computer which, in one embodiment, is 
utilized to implement the present virtual port multiplexing; 

FIG. 2 shows one implementation of one embodiment of the novel virtual port 
multiplexing (VPM) system which allows communication between a plurality of computers 
20 operating at least one application and/or process; 

FIG. 3 shows a simplified block diagram of the VPM similar to that shown in FIG. 2, 
where, in one embodiment, the VPM system routes the connections through a virtual 
port; 

FIG. 4 depicts a simplified block diagram of the VPM system providing multiplexing 
25 or rerouting of a port allowing communication between at least two applications; 
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FIG. 5 shows a simplified block diagram of VPM and the communication or data 
transfer between two applications under the non-cooperative multiplexing once the virtual 
port has been established as shown in FIG. 4; 

FIG. 6 shows a simplified block diagram of the VPM system where cooperative 
5 communication is achieved between two applications or processes each communicating 
through a VPM; 

FIG. 7 shows a simplified block diagram of one implementation of one embodiment 
of the data transfer or communication through the VPM system providing cooperative 
communication similar to that shown in FIG. 6; 
10 FIG. 8 shows a simplified block diagram of one implementation of one embodiment 

where cooperative multiplexing is provided between a first application and a second 
application through a single VPM; and , 

FIG. 9 shows a simplified block diagram of a computer system or network having an 
AppShot Framework and at least one application configurator. 

15 

DETAILED DESCRIPTION 
Among other aspects and innovations, the invention provides structure, system, 
method, method of operation, computer program product, and business model and method for 
providing multiplexing of a port, for example a TCP/IP port, into multiple virtual ports. 

20 Where a port, in one embodiment, is a bidirectional software construct identifying a data 
stream. The novel port multiplexing provided by the present invention allows multiple 
applications and processes, such as multiple socket-based server processes, to utilize the same 
port number without interfering with the operation and data transfer associated with each 
application and process. In one embodiment, the present method and apparatus allows a 

25 plurality of different computers to direct data communication at the same port number 
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without interference, while still maintaining accurate communication. In one embodiment, 
the present method and apparatus transparently redirects communication to alternate ports 
establishing independent data streams without an application's knowledge. 

By allowing the multiplexing of a port into multiple virtual ports, multiple 
5 applications and processes, such as socket-based applications and processes, can monitor, 
accept and transmit data on the same port number, while each application and process 
functionally receives a unique port to send and receive data. In one embodiment, the virtual 
port multiplexing allows two separate instances of the same application to operate on the 
same computer without interference between the two instances, and while avoiding errors or 

10 misdirected data during data communication. For example, two separate instances of the 
same application will direct data to the same port. Thus potential errors are likely to result 
due to the separate instances attempting to simultaneously send or receive data on the same 
port. The present invention will prevent this potential conflict by rerouting at least one of the 
instances by multiplexing the port and transparently rerouting the at least one instance to an 

1 5 alternative port. Further, the present invention allows a plurality of computers to 

communicate while the plurality of computers attempt to reference the same port without 
interfering or corrupting the data transferred. In one embodiment, the virtual port 
multiplexing is accomplished without interaction from the applications or processes, and 
further, the applications or processes are unaware of the virtual streams. The applications or 

20 processes only have knowledge of the original fixed port number. 

FIG. 1 A illustrates in high level block diagram form the overall structure of the 
present invention as used in connection with a global computer network 100 such as the 
Internet. Remote users 102-1 and 102-2 can connect through the computer network 100 to a 
private network of computers 106 protected by firewall 104. Computer network 106 is a 

25 network comprising computers 108-1, 108-2, through 108-n, where n is the total number of 
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computers in network 106. Computers +50 108 are used to run various applications, as well 
as host web sites for access by remote users 102. The present invention is implemented on 
computer network 106 in the form of virtual environments 110-1 and 110-2. While only two 
virtual environments are illustrated, it is to be understood that any number of virtual 
5 environments may be utilized in connection with the present invention. 

In one embodiment, the method and system of the present invention is implemented in 
a computer readable medium, such as a computer program -H-8-executed on a computer 120 
as illustrated in the high level block diagram of FIG. IB. As shown, computer 120 
incorporates a processor 122 utilizing, in one embodiment, a central processing unit (CPU) 

10 and supporting integrated circuitry. A memory 124 which is any type or combination of 
memory including fast semiconductor memory (e.g., RAM, NVRAM or ROM), slower 
magnetic memory (e.g., hard disk storage), optical memory and any conventional memory 
known in the art, to facilitate storage of the computer program 4-1-8-and the operating system 
software. In one embodiment, also included in computer 120 are interface devices including, 

15 but not limited to, keyboard 126, pointing device 130, and monitor 132, which allow a user to 
interact with computer 120. Mass storage devices such as disk drive 134 and CD ROM 136 
may also be included in computer 120 to provide storage of information. Computer 120 may 
communicate with other computers and/or networks via modem 140 and telephone line 142 
to allow for remote operation, or to utilize files stored at different locations. Other media 

20 may also be used in place of modem 140 and telephone line 142, such as a direct connection, 
high speed data line or a wireless connection, and the like. In one embodiment, the 
components described above may be operatively connected by a communications bus 144. In 
one embodiment, the components may be operatively connected by wireless communication. 
FIG. 2 shows one implementation of one embodiment of the novel virtual port 

25 multiplexing (VPM) system 148 which allows communication between a plurality of 
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computers 152a-d operating at least one application and/or process 154a-g. Accurate 
communication is maintained by the present VPM system 148 even though the data 
communicated to and from the plurality of applications 154 are directed to the same port 
number 156, for example port 9000. The communication of the plurality of applications, all 
5 directing and receiving communicated date -data at the same port number is further achieved 
without interference between the computers 152a-c and applications 154a-g, and without 
errors in the communicated data. In one embodiment, the VPM system 148 redirects the 
communication of the computers 152a-d and applications 154a-g to different virtual ports and 
thus avoids interferences. The embodiment of FIG. 2 shows that computers 152a-d and 

10 applications 154a-g attempting to use the same port 156 are being provided functionally 

independent connections cm across that port 156. FIG. 3 shows a simplified block diagram 
of the VPM 440 -148 similar to that shown in FIG. 2, where, in one embodiment, the VPM 
system 148 routes the connections c M through a virtual port 158. Functionally, the VPM 
transparently reroutes communication traffic connections cm to separate ports 156a-c thus 

1 5 avoiding interference and errors. The VPM system 148 allows a plurality of computers 1 52a- 
d and applications 154a-g to logically operate simultaneously when designating the same port 
without interfering and without losing information or data. 

Still referring to FIGS. 2 and 3, the computers 152 are any computer system or 
network. For example, computer 152a is a computer having a plurality of servers 160a-c 

20 providing application processing. Computers 152b-c are individual computers providing a 
client or client application 162a-b with access to computer 152a and server applications 160a- 
c. Computer 154d is a computer network having at least two clients 162c-d allowing access 
to computer 152a and servers 160a-c. In one embodiment, computer 152 is a single network 
location or address regardless of the number of physical computers represented by the single 

25 address, whether operating server applications 160 or client applications 162. In one 
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embodiment, servers 160a-c are physically independent computer systems within a computer 
network 152a. In one embodiment, servers 160a-c are server applications, such as software 
programs, which provide services by listening and responding to network requests on an IP 
address and a port, such as port 9000. In one embodiment, a port is a pre-assigned port that is 
5 known to provide a predefined service. One example of an server application 160 is a Web 
Server with a database module that provides real estate listings, that listens on a TCP port 80 
for HTTP requests. Another example is a service provided over the Internet such as driving 
directions and detailed maps obtain from a web site, such as Yahoo Maps®. In one 
embodiment, clients 162a-d are physically independent computer systems within a computer 
10 or computer network. In one embodiment, clients 162a-d are client applications, such as 
software programs, which attempt to communicate with other computers 152 and/or 
applications 154 at predefined IP addresses through network connections directed at 
predefined ports. An example of a client application is a java applet running within a Web 
browser, or an internet browser itself such as Netscape Browser® or Internet Explorer®. 
15 FIG. 4 depicts a simplified block diagram of the VPM system 148 providing 

multiplexing or rerouting of a port 156 allowing communication between at least two 
applications. In the embodiment shown in FIG. 4, the VPM system 148 provides non- 
cooperative multiplexing in that only one of the two applications attempting to communicate 
is rerouted to an alternate port to send and receive data. In one embodiment of non- 
20 cooperative multiplexing, a first application, for example server application 160 having an 
associated IP address, such as 192.168.1.1, and an application identifier (AID) ai, requests to 
listen (step 210) on an initial port pi, for example port 9000, for communication or requests 
from a second application. In one embodiment, AID is a computer network wide unique 
identifier that corresponds with a specific instance of a running application which is defined 
25 in any number of ways including defining the AID in reference to a logical task to be 



performed by the associated application, by the logical user that is running the associated 
application and any other way of defining known in the art. The VPM 150 receives the 
request from server application 160 and begins to listen on initial port pi, port 9000, for a 
connection or request from a second application (step 212). Once a second application, for 
5 example a client application 162 having an associated IP address ii, such as 192.168.1.70, 
attempts to connect with server application 160 at IP address 192.168.1.1 (step 214) through 
port 9000, VPM 150 receives the connection and a connections connection is accepted (step 
216). The VPM 150 multiplexes the communication connection by allocating a second or 
new port to provide the communication path between server application 160 and client 

10 application 162 (step 220). A new port p2 is then returned (step 222), for example port 
12760, to VPM 150. The VPM 150 then records the port translation of the new port p 2 by 
associating at least the new port p 2 with the AID ai for the server application 160 and the IP 
address ii of the client application 162 (step 224) to allow mapping between the initial port 
pi, port 9000, and the new port p2, port 12760. Once the VPM 150 has allocated and 

1 5 recorded the new port p 2 , data can be transferred between the applications utilizing the virtual 
port 9000 which is functionally the new port p 2 . In one embodiment, recording the port 
translation is achieved by adding the new port number along with the associated IP addresses 
and AIDs in a lookup table. 

FIG. 5 shows a simplified block diagram of VPM 150 and the communication or data 

20 transfer between two applications under the non-cooperative multiplexing once the virtual 
port has been established as shown in FIG. 4. Once VPM 150 has multiplexed the port 
connection to the new port p 2 , the applications can begin communication and data transfer. 
For example, client application 162 sends data to server application 160 at IP address 
192.168.1.1 directed to the initial port pi, port 9000 (step 230). The VPM 150 receives the 

25 data sent to port 9000 (step 232). The VPM 1 50 translates the initial port to determine the 
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new port in which to redirect the data sent from the client application 162 (step 234). In one 
embodiment, the translation is achieved by relating the new port p2 with at least the source IP 
address of the client application 162. In one embodiment, the new port p2 is further related 
with the AID of the server application 160, and the initial port pi, port 9000. In one 
5 embodiment, the VPM 150 utilizes a translation look-up table to determine the new port p2 
based on at least the server AID ai and the client application IP address ii. Once the VPM 
1 50 determines the new port p2, the data is redirected and queued on the new port p2 (step 
236). Once queued, the data is received over the new port p2 (step 240). Once the server 
application 160 requests to read data on the initial port pi, port 9000 (step 242), the VPM 150 
10 translates the initial port pi to determine the multiplexed virtual port p2, port 12760 (step 
244). The data will then be forwarded from the new port p2 to the server application 160 
(step 246). From the server application's view, the data will appear to be received from the 
initial port pi, port 9000. Thus, the server application 160 receives the data from a virtual 
port 9000. 

15 FIG. 6 shows a simplified block diagram of the VPM system 148 where cooperative 

communication is achieved between two applications or processes each communicating 
through a VPM 150a-b. As an example, the server application 160, with IP address 
192.168.1.1 and AID aj, requests to listen (step 260) on an initial port, for example port 9000. 
A first VPM 1 50a receives the request and begins to listen on the initial port pi (step 262). 

20 When client application 1 62, with IP address 1 92. 1 68. 1 .70, requests to connect to server 
application 160 at IP address 192.168.1.1 on the initial port pi (step 264), a second VPM 
150b receives the request and connects to server application 160 through the initial port pi 
(step 266). Following the client application request to connect with the initial port pi, the 
connection is accepted (step 270), the first VPM 150a allocates a new port (step 272), and the 

25 new port p2, for example port 12760, is returned (step 274). The first VPM 150a then listens 
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on the new port p2. The first VPM 150a will signal the second VPM 150b to negotiate or 
record the new port p2 such that the client application 162 establishes a new communication 
connection to the server application 1 62 at 1 92 . 1 68 . 1 . 1 on the new port p 2 , port 1 2760 (step 
280). In one embodiment, negotiation between the first VPM 150a and the second VPM 
5 1 50b to establish the new communication path through the new port p 2 is achieved if the 

client server 162 has an AID which matches the AID of the server application. If the AIDs of 
both applications do not match, the negotiation of the new port p 2 fails. As one example, the 
first VPM 150a sends a communication or message to the second VPM 150b that contains at 
least one AID ai of the server application 160 listening on the initial port pi (i.e., port 9000). 

10 The first VPM 150a may also forward the IP address and port of the requesting client 

application 162, and the new port p 2 (i.e., port 12760). The second VPM 150b receives the 
negotiation message and the second VPM 150b finds the AID ai corresponding to the 
requesting client IP address and port. If no AID is listed for that client IP address and port, 
the connection is terminated. If an AID is listed for that client IP address and port number, 

1 5 but does not correspond to any of the AIDs sent by the first VPM 1 50a, the connection is 
terminated. If the AID for that client IP address and port number is found and it does match 
one of the AIDs sent by the first VPM 1 50a, the second VPM 1 50b sends an 
acknowledgment (step 282) to the first VPM 150a. 

Still referring to FIG. 6, once the new port p2 has been negotiated between both VPMs 

20 1 50a and 1 50b, the second VPM 1 50b acknowledges the new port p 2 to the first VPM 1 50a 
(step 282), and connects on the new port p 2 (step 284). Once the second VPM 150b connects 
with the new port p 2 , the connection is accepted (step 286) by the transport protocol layer 
164, such as a TCP layer. The first and second VPMs 150a-b register or record the port 
translation (step 290 and 292, respectively) and the second VPM 150b returns a virtual port 



11 



connection or socket connection to the server application at IP address 192.168.1.1 over 
virtual port 9000 (step 294). 

Once the new port p2 has been negotiated and translated between both the first and 
second VPMs 150a-b, both the server and client applications are capable of transmitting and 
5 receiving data utilizing the virtual port. FIG. 7 shows a simplified block diagram of one 
implementation of one embodiment of the data transfer or communication through the VPM 
system providing cooperative communication similar to that shown in FIG. 6. In this 
embodiment, the client application 162 is transferring data to the server application 160 
through the virtual port p2. Initially client application 162 attempts to send data to server 

1 0 application at IP address 192.168.1.1 on an initial port p i , for example port 9000 (step 310). 
The second VPM 150b receives the data and translates the initial port pi to the new port p2 
(step 3 12). In one embodiment, the translation by the second VPM 150b includes obtaining 
or extracting the client application AID ai, the client source IP address (192.168.1.70) and 
client source port address, for example, port 241 1 1 (not shown). The second VPM 150b then 

1 5 determines the rerouted destination, including server destination IP address (1 92. 1 68. 1 . 1 ) and 
server destination port or new port p2 (for example, port 12760) as negotiated between first 
and second VPMs 150a-b (see step 280). Once the port translation is completed and the 
virtual port is returned, the data is sent over the new port p2 (step 314) and received on the 
new port p2 (step 316). Once the server application 160 requests to read the data on the initial 

20 port pi (step 320), the first VPM 150a translates the initial port pi to the new port p2 (step 
322) as negotiated. Once the first VPM 150a translates the initial port pi, the data is then 
forwarded from the virtual port 9000 (new port P2) to the server application 160 (step 324). 

A similar translation is performed when a response is generated by the server 
application or when data is forwarded from the server application 160 to the client application 

25 162. For example, when the server application 160 forwards the data to the first VPM 150a, 
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the first VPM 150a extracts the server application AID al , the server application IP address 
(192.168. 1 .1) and the server application port number (9000). Using this information, first 
VPM 150a pr e form s performs a lookup to determine where to reroute the response. For 
example, the response is rerouted to client application IP address (192.168.1.70) at client 
5 source port address (for example, 241 1 1) through virtual port, which is functionally 
equivalent to the new port p2. 

In one embodiment, the redirecting or rerouting of the data to the new port p 2 includes 
rewriting the protocol headers and recalculating a corresponding checksum. When data is 
transferred between components of a computer network, often the data being transferred is 

10 packetized prior to transferring. The packets of data are often formatted with a header, to 
identify at least the destination, and usually the source of the data. Many packetized formats 
include additional information such as IP addresses, port numbers, and checksums in the data 
structure layout of a packet, such as a TCP packet as defined by a TCP protocol. In one 
embodiment of the present invention, the data is packetized and these packets are rerouted to 

1 5 the virtual ports as described above. Because the packets are rerouted from an initial port 
(i.e., port pi) to alternate ports (i.e., new port p 2 ) , the parameters of the header are altered to 
reflect the actual port providing the packet communication. In one embodiment, because the 
packets are being communicated through the virtual port, the headers of the packets are 
rewritten to designate the virtual port as the communication port. Thus, to ensure that the 

20 multiplexing of the ports is transparent to the applications communicating, the VPM system 
148 alters the virtual port number in the header of each packet back to the initial port number 
(i.e., port pi) before delivering the packets to the destination application or process thus 
making the virtualization transparent to the destination application or process receiving the 
packets. Changing the port number changes the checksum of the packet, so the VPM 1 50 

25 further calculates a new checksum and replaces the old checksum in the packet with a new 
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checksum. Thus allowing the packets of data to be effectively rerouted to and from the 
virtual ports transparently. 

In one embodiment, virtual port multiplexing of the present invention allows for the 
implementation of a virtual layer in a protocol stack, such as a TCP/IP protocol stack. The 
5 virtual layer is implemented by intercepting a request to bind or connect to a specific socket, 
allocating an anonymous port, registering or storing a mapping between the original fixed 
port and the new anonymous port, and redirecting the request to the new port. As described 
above, packets of data are redirected by rewriting the protocol headers and recalculating the 
corresponding checksums. 

10 In one embodiment, the present VPM system 148 groups applications or processes 

attempting to access the same port number. For example, if a first application or process is 
accessing a first port and has been allocated a first virtual stream, and another different 
application, another instance of the same application or another process attempts to access the 
same port number, the VPM system 148 will determine if the second application, instance or 

15 process has an AID that matches the first application's AID. If the AID is found to be the 
same as the first application, the different application, instance or process will receive the 
same virtualized stream. If the different application, instance or process AID does not match 
that of the first application's AID, a new virtualized stream is created. 

In one embodiment, when VPM system 148 attempts to allocate a new virtualized 

20 port, a port must be available. In one embodiment, if a port is not available, the allocation of 
the virtualized port fails. In one embodiment, if there is not an available port when VPM 
system 148 attempts to allocate a new virtualized port, the request for the port is queued and 
VPM system 148 waits for a port to become available. In one embodiment, if the port does 
not become available within a predefined period, the attempt fails and an error signal is 

25 returned. 
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FIG. 8 shows a simplified block diagram of one implementation of one embodiment 
where cooperative multiplexing is provided between the first application 160 and the second 
application 162 through a single VPM 150. As such, the single VPM 150 transparently 
reroutes the communication through the second port p2 as described above. 

FIG. 9 shows a simplified block diagram of a computer system or network 410 having 
an AppShot Framework 412 and at least one application configurator 414 associated with a 
first application 160. In one embodiment, the present VPM system 148 is included within the 
AppShot framework 412. In an alternative embodiment, VPM system 148 is a separate, 
independent system from the AppShot framework 412 and operates in cooperation with the 
AppShot framework 412. In one embodiment, the AppShot framework 412 is a software 
layer that processes relevant transactions between the applications and the operating system. 
Requests for system resources or changes to process states are routed internally and the 
AppShot framework 412 tracks these events. 

In one embodiment, the application configurator 414 communicates configuration 
information regarding the associated application to aid in the initialization of the application. 
The configuration information includes any information relating to the associated application 
including, but not limited to, the AID of the associated application, and ports to be 
multiplexed. In an example for non-cooperative multiplexing, the configurator 414 supplies, 
for a given application pathname, at least the AID of the application. In one embodiment, the 
configurator 414 further supplies a list of port numbers, such as TCP port numbers, that are to 
be multiplexed by VPM and a list of source IP address/port number pairs that should 
correspond be routed to this AID. In an example for cooperative multiplexing, the 
configurator 414 supplies at least the AID of the application, and in one embodiment 
configurator 414 further supplies a list of port numbers that are to be multiplexed. 
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In one embodiment, the application configurator 414 operates without assistance from 
the application associated with the configurator 414. One example of an application 
configurator 414 is an application library. In one embodiment, application configurator 414 
exists in the server application environment. In one embodiment, the application configurator 
5 414 is implemented as a server process that proxies application information to an operating 
system as needed. 

In one embodiment, the present invention further provides snapshot virtual templating 
by creating virtual application templates for the purpose of propagating a single application 
snapshot into multiple, distinct images. Snapshot virtual templates allow multiple application 

10 instances to use the same fixed resource identifier by making the resource identifier virtual, 
privatizing it, and dynamically mapping it to a unique system resource identifier. When a 
snapshot is cloned from a virtual template, the common or shared data is used exactly as is, 
whereas the non-sharable data is either copied-on-write, multiplexed, virtualized, or 
customized-on-duplication. The present invention greatly reduces the required administrative 

15 setup per application instance. Snapshot virtual templating works by noting access to 
modified resources, fixed system IDs/keys and unique process-related identifies and 
automatically inserting a level of abstraction between these resources and the application. 
The resources contained in a snapshot virtual template can be dynamically redirected at 
restore time. Access to memory and storage is managed in a copy-on-write fashion. System 

20 resource handles are managed in a virtualize-on-allocate fashion or by a multiplex-on-access 
mechanism. Process-unique resources are managed in a redirect-on-duplicate fashion. Rules 
may be defined through an application configurator that allows some degree of control over 
the creation of non-sharable data. 

In one embodiment, the present invention further provides snapshot restoring by 

25 saving all process state, memory, and dependencies related to a software application to a 
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snapshot image. Interprocess communication (IPC) mechanisms such as shared memory and 
semaphores must be preserved in the snapshot image as well IPC mechanisms include any 
resource that is shared between two process or any communication mechanism or channel 
that allow two processes to communicate or interoperate is a form of IPC. Sockets, shared 
5 memory, semaphores and pipes are some examples of IPC mechanisms. Between snapshots, 
memory deltas are flushed to the snapshot image, so that only the modified-pages need be 
updated. Software modules that track usage of resources and their corresponding handles are 
included as part of the snapshot/restore framework of the present invention. At snapshot 
time, state is saved by querying the operating system kernel, the application snapshot/restore 

10 framework components, and the process management subsystem that allows applications to 
retrieve internal process-specific information not available through existing system calls. At 
restore time, the reverse sequence of steps for the snapshot procedure is followed and state is 
restored by making requests to the kernel, the application snapshot/restore framework, and 
the process management subsystem. 

1 5 The present invention has been described generally as operating under or in 

cooperation with a TCP/IP protocol, however, the virtual port multiplexing apparatus and 
method is capable of providing virtual port multiplexing for communications and data being 
transferred under substantially any communication protocol. For example, the present VPM 
system 148 is capable of providing port multiplexing for protocols which supports point-to- 

20 point data links. 

Having disclosed exemplary embodiments and the best mode, modifications and 
variations may be made to the disclosed embodiments while remaining within the scope of 
the present invention as defined by the following claims. 
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WHAT IS CLAIMED IS: 

1 . A method of providing communication between at least two applications, comprising 
the steps of: 

accepting a connection from a second application on a first port; 

allocating a second port to receive the communication from the second application; 

recording the translation of the second port; 

sending the communication to the first port from the second application; 

receiving the communication on the second port; and 

delivering the communication to a first application from the second port. 

2. The method as claimed in claim 1, further comprising the step of: 
listening on the first port for the connection from the second application. 

3. The method as claimed in claim 1, further comprising the step of: 

the first application requesting the communication from the first port; and 
translating the first port in the request for the communication to determine the second 

port such that the communication is delivered to the first application in the step of delivering 

the communication to the first application. 

4. The method as claimed in claim 1, further comprising the steps of: 

receiving the communication on the first port following the step of sending the data to 
the first port; and 

translating the first port to determine the second port prior to the step of receiving the 
communication on the second port. 
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5. The method as claimed in claim 4, wherein: 

the step of receiving the communication on the second port including queuing the 
communication on the second port from the first port. 

5 6. The method as claimed in claim 1 , further comprising the steps of: 

the second application requesting to connect with the first port prior to the step of 
accepting the connection. 

7. The method as claimed in claim 1, further comprising the steps of: 

10 negotiating the second port following the step of allocating the second port; 

8. The method as claimed in claim 7, wherein: 

the step of negotiating including negotiating the second port between a first and second 
virtual port multiplexer, 

15 

9. The method as claimed in claim 1, further comprising the steps of: 
connecting the second application with the second port following the step of 

allocating the second port. 

20 10. The method as claimed in claim 9, wherein: 

the step of recording the translation including: 

a) recording the translation of the second port in association with the first 
application; and 

b) recording the translation of the second port in association with the second 

25 application. 
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1 1 . The method as claimed in claim 10, wherein: 

the step of recording the translation of the second port in association with the first 
application including recording the translation in a first virtual port multiplexer. 

12. The method as claimed in claim 11, wherein: 

the step of recording the translation of the second port in association with the second 
application including recording the translation in a second virtual port multiplexer. 

13. The method as claimed in claim 10, wherein: 

the step of sending the communication to the first port from the second application 
including directing the communication at a first port number and translating the first port 
number to a second port number; and 

sending the communication to the second port utilizing the second port number prior 
to the step of receiving the communication on the second port. 

14. The method as claimed in claim 9, further comprising the step of: 

returning to the second application a virtual socket connection to the first port prior to 
the step of sending the communication to the first port from the second application. 

15. The method as claimed in claim 1, wherein: 

the step of delivering the communication to the first application from the second port 
including rewriting the communication to appear to the first application as though the 
communication is delivered from the first port. 
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16. The method as claimed in claim 15, wherein: 

the step of rewriting including rewriting a header of the communication to include at 
least the first port. 

17. The method as claimed in claim 16, wherein: 

the step of rewriting including rewriting the header of the communication to include a 
revised checksum. 

18. A computer system providing a method for multiplexing at least one port, comprising 
the steps of: 

receiving a request to access a first port from a first application; 
receiving a connection on the first port from a second application; 
allocating a new port; and 
returning the connection to the new port. 

19. The computer system as claimed in claim 18, further comprising the step of: 
translating the new port including determining an application identifier (AID) and 

internet protocol (IP) address. 

20. The computer system as claimed in claim 19, further comprising the step of: 
negotiating the new port prior to the step of translating the new port. 

2 1 . The computer system as claimed in claim 20, further comprising the step of: 
acknowledging the new port prior to the step of translating of the new port; 
returning the virtual port connection to the second application; 
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22. The computer system as claimed in claim 21, further comprising the step of: 
the second application requesting connection to the first port prior to the step of 

receiving a connection. 

5 

23. A computer program product for performing virtual port multiplexing of a plurality of 
ports to allow communication between at least a first and second computer, the computer 
program product including a computer readable medium and a computer program mechanism 
stored thereon, the computer program mechanism comprising: 

10 a virtual port multiplexing procedure configured to: 

a) accept a connection from a second application on a first port; 

b) allocate a second port to receive the communication from the second 

application; 

c) record the translation of the second port; 

15 d) send the communication to the first port from the second application; 

e) receive the communication on the second port; and 

f) deliver the communication to a first application from the second port. 

24. The computer program product as claimed in claim 23, further comprising the step of: 
20 listening on the first port for the connection from the second application; 

the first application requesting the communication from the first port; 

translating the first port in the request for the communication to determine the second 
port such that the communication is delivered to the first application in the step of delivering 
the communication to the first application; 
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receiving the communication on the first port following the step of sending the data to 
the first port; and 

translating the first port to determine the second port prior to the step of receiving the 
communication on the second port. 

5 

25. The computer program product as claimed in claim 23, further comprising the steps 
of: 

negotiating the second port following the step of allocating the second port including 
negotiating the second port between a first and second virtual port multiplexer; 
10 connecting the second application with the second port following the step of 

allocating the second port; and 

the step of recording the translation including: 

a) recording the translation of the second port in association with the first 
application; and 

1 5 b) recording the translation of the second port in association with the second 

application. 

26. An apparatus for providing communication between at least two computers, the 
apparatus comprising: 

20 a first computer coupled with a first virtual port multiplexer; 

at least a first and second port coupled with the first virtual port multiplexer; 

a second computer coupled with at least the first port, and the second computer 
configured to at least direct communication to the first port; 

the first computer configured to at least receive the communication from the second 
25 port; and 
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the first virtual port multiplexer configured to at least record a translation of the first 
port in relation to the second port. 

27. The apparatus as claimed in claim 26, further comprising: 
5 a second virtual port multiplexer coupled with the second computer and with at least 

the first and second ports; and 

the second virtual port multiplexer configured to at least record the translation of the 
first port to the second port. 

10 28. The apparatus as claimed in claim 27, wherein: 

the first virtual multiplexer couples with the second virtual multiplexer such that the 
first and second virtual multiplexers are configured to at least communicate the translation 
between the first port and the second port. 

1 5 29. The apparatus as claimed in claim 26, wherein: 

the first computer further configured to operate a first application; 
the second computer further configured to operate a second application; and 
the first and second applications being configured to communicate such that the 
second computer at least directs the communication from the second application and the first 

20 computer at least receives the communication for the first application. 

30. The apparatus as claimed in claim 26, wherein: 

the first multiplexer is configured to rewrite the communication to at least appear to 
the first computer that the communication is received from the first port. 

25 



24 



3 1 . The apparatus as claimed in claim 30, wherein: 

the first multiplexer having a means for translating at least the first port in relation to 
the second port. 

5 32. The apparatus as claimed in claim 30, wherein: 

the first multiplexer having a lookup table to translate the first port in relation to the 
second port. 



25 



ABSTRACT 

To achieve the foregoing, and in accordance with the purpose of the present 
invention, a method and apparatus is disclosed which provides communication between at 
least two applications. The communication is achieved by accepting a connection from a 
second application on a first port and allocating a second port to receive the communication 
from the second application. Once the second port has been allocated the second port 
translation is recorded. The communication is sent to the first port from the second 
application and received on the second port. The communication is then delivered to a first 
application from the second port. In one embodiment the first application requests the 
communication from the first port and the first port is translated to determine the second port 
such that the communication is delivered to the first application in the step of delivering the 
communication to the first application. 
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